|
|
Colapse all |
Post message
APPLE-SA-2018-05-04-1 Security Update 2018-001 Swift 4.1.1 for Ubuntu 14.04 2018-05-04 Apple Product Security (product-security-noreply lists apple com) [slackware-security] seamonkey (SSA:2018-123-01) 2018-05-04 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] seamonkey (SSA:2018-123-01) New seamonkey packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/seam [ more ] [ reply ] Updated VMSA-2018-0007.3: VMware Virtual Appliance updates address side-channel analysis due to speculative execution 2018-05-04 VMware Security Response Center (security vmware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Changelog: 2018-05-03: VMSA-2018-0007.3 Updated in conjunction with the release of vSphere Data Protection (VDP) 6.1.5 on 2018-05-03. -----BEGIN PGP SIGNATURE----- Version: Encryption Desktop 10.4.1 (Build 490) Charset: utf-8 wj8DBQFa6wKlDE [ more ] [ reply ] [SECURITY] [DSA 4190-1] jackson-databind security update 2018-05-03 Sebastien Delafond (seb debian org) SEC Consult SA-20180503-0 :: Authentication Bypass in Oracle Access Manager (OAM) 2018-05-03 SEC Consult Vulnerability Lab (research sec-consult com) We have published an accompanying blog post to this technical advisory with further information: Blog: https://www.sec-consult.com/en/blog/2018/05/oracle-access-managers-ident ity-crisis/ Demo video: https://www.youtube.com/watch?v=YK7_1NozAwQ SEC Consult Vulnerability Lab Security Advisory < 20 [ more ] [ reply ] Command injections via USB upgrade in MSTAR Set-Top box products 2018-05-03 IM (ivanm security-net biz) While I was working on diagnostic device for some of my clients I found command injections in MSTAR Set-Top box products. Diagnostic device is not specialy target this vendor but we used it in development phase and for testing. Vulnerable functionality is in automatic USB upgrade process. It is pos [ more ] [ reply ] CA20180501-01: Security Notice for CA Spectrum 2018-05-02 Kotas, Kevin J (Kevin Kotas ca com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CA20180501-01: Security Notice for CA Spectrum Issued: May 1st, 2018 Last Updated: May 1st, 2018 CA Technologies Support is alerting customers to a potential risk with CA Spectrum. A vulnerability exists that can allow an unauthenticated remote atta [ more ] [ reply ] CVE-2016-6811: Apache Hadoop Privilege escalation vulnerability 2018-05-01 Akira Ajisaka (aajisaka apache org) CVE-2016-6811: Apache Hadoop Privilege escalation vulnerability Severity: Critical Vendor: The Apache Software Foundation Versions Affected: All the Apache Hadoop versions from 2.2.0 to 2.7.3 Description: A user who can escalate to yarn user can possibly run arbitrary commands as root user. Mit [ more ] [ reply ] [slackware-security] mozilla-firefox (SSA:2018-120-02) 2018-05-01 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] mozilla-firefox (SSA:2018-120-02) New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/p [ more ] [ reply ] [slackware-security] libwmf (SSA:2018-120-01) 2018-05-01 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] libwmf (SSA:2018-120-01) New libwmf packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +----------------------- [ more ] [ reply ] Advisory - Sourcetree for Windows - CVE-2018-5226 2018-04-30 Atlassian (security atlassian com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 This email refers to the advisory found at https://confluence.atlassian.com/x/ERyUO . CVE ID: * CVE-2018-5226. Product: Sourcetree for Windows. Affected Sourcetree for Windows product versions: version < 2.5.5.0 Fixed Sourcetree for Windows p [ more ] [ reply ] [SECURITY] [DSA 4184-1] sdl-image1.2 security update 2018-04-28 Salvatore Bonaccorso (carnil debian org) [SECURITY] [DSA 4181-1] roundcube security update 2018-04-28 Salvatore Bonaccorso (carnil debian org) [SECURITY] [DSA 4182-1] chromium-browser security update 2018-04-28 Michael Gilbert (mgilbert debian org) [slackware-security] openvpn (SSA:2018-116-01) 2018-04-27 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] openvpn (SSA:2018-116-01) New openvpn packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: +-------------------- [ more ] [ reply ] [HITB-Announce] HITBGSEC2018 CFP - Final Call 2018-04-26 Hafez Kamal (aphesz hackinthebox org) FINAL CALL!! The Call for Papers for the HITB GSEC 2018 Singapore is now open! Call for Papers: https://gsec.hitb.org/call-for-papers/ Event Website: https://gsec.hitb.org/sg2018/ HITB GSEC is a three-day security conference where attendees get to vote on the final agenda of talks. Attendees can [ more ] [ reply ] Secunia Research: Oracle Outside In Technology Use-After-Free Vulnerability 2018-04-25 Secunia Research (remove-vuln secunia com) APPLE-SA-2018-04-24-2 Security Update 2018-001 2018-04-24 Apple Product Security (product-security-noreply lists apple com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2018-04-24-2 Security Update 2018-001 Security Update 2018-001 is now available and addresses the following: Crash Reporter Available for: macOS High Sierra 10.13.4 Impact: An application may be able to gain elevated privileges Description: [ more ] [ reply ] APPLE-SA-2018-04-24-1 iOS 11.3.1 2018-04-24 Apple Product Security (product-security-noreply lists apple com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2018-04-24-1 iOS 11.3.1 iOS 11.3.1 is now available and addresses the following: Crash Reporter Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation Impact: An application may be able to gain elevated privil [ more ] [ reply ] APPLE-SA-2018-04-24-3 Safari 11.1 (v. 11605.1.33.1.4, 12605.1.33.1.4, and 13605.1.33.1.4) 2018-04-24 Apple Product Security (product-security-noreply lists apple com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2018-04-24-3 Safari 11.1 (v. 11605.1.33.1.4, 12605.1.33.1.4, and 13605.1.33.1.4) Safari 11.1 (v. 11605.1.33.1.4, 12605.1.33.1.4, and 13605.1.33.1.4) is now available and addresses the following: WebKit Available for: OS X El Capitan 10.11.6 [ more ] [ reply ] [SECURITY] [DSA 4179-1] linux-tools security update 2018-04-24 Salvatore Bonaccorso (carnil debian org) |
|
Privacy Statement |
Hash: SHA512
APPLE-SA-2018-05-04-1 Security Update 2018-001 Swift 4.1.1 for
Ubuntu 14.04
Security Update 2018-001 Swift 4.1.1 for Ubuntu 14.04 is
now available and addresses the following:
Swift for Ubuntu
Available for: Ubuntu 14.04
Not impacted: Ubuntu 16.04 a
[ more ] [ reply ]